Re: [Openstack] Some questions about "Cinder Multi-Attach" in Openstack Queens

# I installed the openstack queens use devstack. I want to test the "Cinder Multi-Attach" function # 3. mount the volume , create some file，but the file don't sync between the two instance，It seems that they are two independent volumes Did you unmount the filesystem on the first node before

Re: [Openstack-operators] OpenContrail Integration with an existing OpenStack

> Do I need to ensure OpenStack network state is clean before integrate > OpenContrail with my existing Openstack? > Any suggestion? What do you mean by “clean”? Contrail will ignore all information in the neutron db. Any incoming neutron api call will be translated to a contrail-api call.

Re: [Openstack] Compute Node shutdown how to prevent instance suspend

>There is this nova option: >resume_guests_state_on_host_boot=true > >But it doesn't delete or shutdown instances but rather turns them on >automatically once compute host resumes. >which might also work for you, probably not just mentioning it any way. Note that you might want to check some

[Openstack-operators] PCI pass through settings on a flavor without aliases on the API nodes

Hi, Does anyone know if it is possible to set PCI pass through on a flavor without also needing to set the alias on the nova API nodes as mentioned here: https://docs.openstack.org/nova/pike/admin/pci-passthrough.html E.G you need to set in nova.conf: [pci] alias = { "vendor_id":"8086",

Re: [Openstack] Rackspace Cloud and Openstack Client compatibility

> I checked Terraform which presumably uses Heat client > (https://wiki.openstack.org/wiki/OpenStackClients#Official_Clients) > but it also says that Rackspace is not officially supported due to some > differences >

Re: [openstack-dev] [rdo-list] [TripleO] What's the plan for shipping Pike TripleO containers ?

> snip > It's probably also worth asking if we want to be shipping stable > containers at all ? Who will be the users of those stable containers ? > snip My 2cts as a consumer of “just” RDO packages and working to move to containers: (We are currently running our own puppet infra and have

Re: [Openstack-operators] Case studies on Openstack HA architecture

> Thanks Curtis, Robert, David and Mohammed for your responses. >As a follow up question, do you use any deployment automation tools for > setting up the HA control plane? > I can see the value of deploying each service in separate virtual > environment or containers but automating such

Re: [Openstack-operators] Case studies on Openstack HA architecture

> > Hi Openstack operators, > > Most Openstack HA deployment use 3 node database cluster, 3 node rabbitMQ > cluster and 3 Controllers. > I am wondering whether there are any studies done that show the pros and cons > of co-locating database and messaging service with the Openstack control >

Re: [Openstack-operators] custom build image is slow

>> how do we install virtio drivers if its missing? How do I verify it on the >> centos cloud image if its there? >Unless it’s a very very ancient unsupported version of centos the virt-io >drivers will be in the kernel package. >Do a lsmod and look for virtio to check if it is loaded. Forgot

Re: [Openstack-operators] custom build image is slow

> how do we install virtio drivers if its missing? How do I verify it on the > centos cloud image if its there? Unless it’s a very very ancient unsupported version of centos the virt-io drivers will be in the kernel package. Do a lsmod and look for virtio to check if it is loaded. Regarding

Re: [Openstack-operators] Experience with Cinder volumes as root disks?

>>> Mike Smith >>On the plus side, Cinder does allow you to do QOS to limit I/O, whereas I do >>not believe that’s an option with Nova ephemeral. You can specify the IOPS limits in the flavor. Drawbacks: * You might end up with a lot of different flavors because of IOPS

Re: [Openstack] Live Migration and LibVirt CPU Mode

> The instance can also be migrated between 2 Westmere hosts. > As I outline in another email, I suspect (perhaps incorrectly) as the VM has > "cpu mode='host-model'" in its running config, > libvirt may be comparing source and destination host CPUs and not guest and > destination CPUs.

Re: [Openstack] Live Migration and LibVirt CPU Mode

> I'm encountering an issue with live migrating between 2 Compute nodes with > different CPU models. Host A has a Westmere CPU and host B has a Broadwell. That’s expected unless you specify the least common denominator with the cpu model, in this case Westmere, when you boot the instances.

[openstack-dev] [neutron][osc] Openstack client, unit tests & creating default empty values

Hello, The unit test for the network/v2/fakes.py for the port creates empty dictionaries e.g. for allowed_address_pairs: port_attrs = { 'admin_state_up': True, 'allowed_address_pairs': [{}], 'binding:host_id': 'binding-host-id-' + uuid.uuid4().hex,

Re: [Openstack] Radius scalability

>Hi Robert, > > I saw your proposal about keystone middleware >for Radius and OpenStack integration from the last year’s discussion, > >do you know about the progress in this area, >maybe someone has already done the scalability evaluation? > >My idea atm is to use Radius with TripleO. Hi

Re: [Openstack-operators] Can Windows 8, Windows Server 2003 and Windows Server 2008 be deployed on openstack kilo

Hello, Its not really OpenStack related but it depends on your virtualization stack. Assuming its OpenStack with KVM: https://www.linux-kvm.org/page/Guest_Support_Status#Windows_Family Note that you might have some interesting times with the licensing. From what I have understood (I am not a

Re: [Openstack] [openstack-dev][neutron] Neutron firewall

> We currently have a cloud infrastructure meeting our own requirements. > Let's focus on some Networking features (firewall, instances isolation, > spoofing control). We are thinking about moving to OpenStack and when we > focus on these Networking features, Neutron comes into play > We are

Re: [Openstack] Max open files limit for nova-api

Luckily you can easily compile your own: This post shows the source code and how to build a tool like prlimit: http://lzone.de/cheat-sheet/ulimit IMHO it is quite ugly to change it this way though. I see this more as a tool for a process that cannot be restarted without causing issues. The

Re: [Openstack-operators] VM monitoring suggestions

>>I know that ceilometer may be an option, but I believe operators use all kind >>of tools for their own ressource usage monitoring. So what do you people use? >> >>(For this use case, we're looking for something that can be used without >>installing an agent in the VM, which makes it impossible

Re: [Openstack-operators] Managing quota for Nova local storage?

s but not getting false-positives is hard. Cheers, Robert From: "Van Leeuwen, Robert" <rovanleeu...@ebay.com> Date: Friday, November 11, 2016 at 12:10 AM To: "Kris G. Lindgren" <klindg...@godaddy.com>, Edmund Rhudy <erh...@bloomberg.net>, "wa

Re: [Openstack-operators] Managing quota for Nova local storage?

Thx for your stories, I think we are now all doing pretty much the same thing to get around the issue but it still looks like a very useful feature. So to share what we (eBay-ECG) are doing: We also started out with scaling the flavor disksize to either memory or cpu. (so e.g. large disk ==

Re: [Openstack-operators] Managing quota for Nova local storage?

Hi, Found this thread in the archive so a bit of a late reaction. We are hitting the same thing so I created a blueprint: https://blueprints.launchpad.net/nova/+spec/nova-local-storage-quota If you guys already found a nice solution to this problem I’d like to hear it :) Robert van Leeuwen eBay

Re: [Openstack-operators] Nova live-migration failing for RHEL7/CentOS7 VMs

> There is a bug in the following: > > qemu-kvm-1.5.3-105.el7_2.7 > qemu-img-1.5.3-105.el7_2.7 > qemu-kvm-common-1.5.3-105.el7_2.7 You might be better of using the RHEV qemu packages They are more recent (2.3) and have more features compiled into them. Cheers, Robert van Leeuwen

Re: [Openstack] [OpenStack] [keystone] How to make keystone highly available?

>> Also you can use peacemaker and other stuff to reach high availability >Yes, but I'm guessing those need _another_ machine in front of the ones > I want to load balance. And if that goes down, EVERYTHING stops working. > Unless they are clustered, which require _even more_ machines!

Re: [Openstack-operators] Openstack team size vs's deployment size

> I was hoping to poll other operators to see what their average team size vs’s > deployment size is, > as I am trying to use this in an internal company discussion. > Right now we are in the order of ~260 Compute servers per Openstack > Dev/Engineer. > So trying to see how we compare with

Re: [Openstack-operators] ElasticSearch on OpenStack

Hi, I had some “interesting” issues in the past with sparse files on xfs with elasticsearch: http://engineering.spilgames.com/hypervisor-kernel-panics-hit-2014-sl6-5/ If you pre-allocate your files you should be good. Cheers, Robert van Leeuwen From: Tim Bell Date: Friday,

Re: [Openstack] Guest VM IP configuration script

On 8/30/16, 4:44 PM, "Satish Patel" wrote: >Robert, > >I didn't find any related configuration which blacklist mac address on >Mitaka. also i didn't find any document stated that DHCP agent only > gives ip address to instance mac address. I am not sure if

Re: [Openstack] Guest VM IP configuration script

et1 --enable_dhcp=True > --allocation-pool=start=10.0.3.160,end=10.0.3.166 --gateway=10.0.0.1 > network1 10.0.0.0/21 > > After realizing issue i have changed --enable_dhcp=False > > On Fri, Aug 26, 2016 at 2:35 AM, Van Leeuwen, Robert > <rovanleeu...@ebay.com> wrote: >

Re: [Openstack] Guest VM IP configuration script

> When i was trying to use DHCP in openstack i found openstack DHCP > start provide ip address to my existing LAN machines ( we are using > flat VLAN with neutron), that is why i disable openstack DHCP, Is it > common or i am doing something wrong? I do not think this should happen. It has been a

Re: [Openstack-operators] Updating flavor quotas (e.g. disk_iops) on existing instances.

>> Since the instance_extra flavor table is a big JSON blob it is a pain to >> apply changes there. >> Anybody found an easy way to do this? > If You are using virsh, You can apply such limits manually for each > instance. Check blkiotune command in virsh. Using virsh is only for the running

[Openstack-operators] Updating flavor quotas (e.g. disk_iops) on existing instances.

Hi, Is there an easy way to update the quotas for flavors and apply it to existing instances? It looks like these settings are tracked in the “instance_extra” table and not re-read from the flavor when (hard) re-booting the instances. Since the instance_extra flavor table is a big JSON blob it

Re: [Openstack] Can't start instance after upgrade to Mitaka release

> I upgraded release OpenStack from Kilo to Mitaka. >But now I can't start any Instance. At the compute node nova daemons said: > 2016-04-20 12:40:15.395 226509 ERROR oslo_messaging.rpc.dispatcher > [req-86e4ab2e-229a-438d-87d2-d9ce9f749dbc 79401c3a746740ef826762ca9eaeb207 >

Re: [Openstack-operators] keystone authentication on public interface

> >Hello folks, > >I was wondering if you let me know if enabling keystone to listen on public >interface for ports 5000 and 35357 is considered as a normal practice. Example >if a customer wants to authenticate not via horizon or some other proxy but >setting up OS_AUTH_URL=http://blah

Re: [Openstack] Fwd: Need to integrate radius server with OpenStack

>Now we are stuck at this point how to authenticate users via free radius. >Any help or pointers on this would be grateful. Hi Pratik, You can write your own keystone middleware to authenticate with. There is a nice doc about that here:

Re: [Openstack] CEPH Speed Limit

Hi, I think this question would be better suited to the ceph maillinglist but I will have a go at it. > I have a client who isn't happy with the performance of their storage. > The client is currently running a mix of SAS HDDs and SATA SSDs. What part are they not happy about? Throughput or

Re: [Openstack] How to create an image that can be installed to other hypervisors or load it on other instances in another openstack cloud?

> Has anyone create an image that can be installed into other hypervisors than > openstack? > I mean that I have the image, (let’s say a Cirros image), on an instance and > I make some changes there. > How can I take that image together with my changes, produce a new image > including the

Re: [Openstack-operators] [puppet] module dependencies and different openstack versions

We currently use our own custom puppet modules to deploy openstack, I have been looking into the official openstack modules and have a few barriers to switching. We are looking at doing this at a project at a time but the modules have a lot of dependencies. Eg. they all depend on the keystone

[Openstack-operators] [puppet][keystone] Creating Keystone users with a password in the puppet module (Kilo) throws error at second puppetrun

Hi, I am using the Kilo puppet recipes to setup Kilo on Ubuntu 14.04 to test the latest Puppet recipes with Vagrant. I am creating an keystone admin user from within the puppet recipe. Creating the keystone user works fine but the second puppetrun gives an error whenever you set a password for

Re: [Openstack-operators] [openstack-dev] [Neutron] Deprecating the use_namespaces option - Now's the time to speak up!

I think there are valid reasons to not use namespaces: * Fewer moving parts == less can potentialy fail * Troubleshooting is easier due to less places to look / need no familiarity with namespaces tools * If I remember correctly setting up a namespace can get really slow when you

Re: [openstack-dev] [Openstack-operators] [Neutron] Deprecating the use_namespaces option - Now's the time to speak up!

I think there are valid reasons to not use namespaces: * Fewer moving parts == less can potentialy fail * Troubleshooting is easier due to less places to look / need no familiarity with namespaces tools * If I remember correctly setting up a namespace can get really slow when you

Re: [openstack-dev] [Openstack-operators] [Neutron] Deprecating the use_namespaces option - Now's the time to speak up!

Are the setups out there *not* using the use_namespaces option? I'm curious as to why, and if it would be difficult to migrate such a setup to use namespaces. At my previous employer we did not use namespaces. This was due to a installation a few years ago on SL6 which did not have name

Re: [Openstack-operators] [openstack-dev] [Neutron] Deprecating the use_namespaces option - Now's the time to speak up!

Are the setups out there *not* using the use_namespaces option? I'm curious as to why, and if it would be difficult to migrate such a setup to use namespaces. At my previous employer we did not use namespaces. This was due to a installation a few years ago on SL6 which did not have name